[lug] "ALL: PARANOID" in /etc/hosts.deny
McIllece, Matthew W
matthew.w.mcillece at lmco.com
Fri Feb 25 17:14:01 MST 2000
That's pretty slick! Does hosts_access automatically fill in the IP address
for %a and the port number for %d?
Does the PARANOID setting not work with the new format? Why didn't you use
it?
-----Original Message-----
Date: Fri, 25 Feb 2000 12:25:45 -0700
From: M Katherine Pagoaga <pagoaga at boulder.nist.gov>
Organization: NIST
To: lug at lug.boulder.co.us
Subject: Re: [lug] "ALL: PARANOID" in /etc/hosts.deny
Reply-To: lug at lug.boulder.co.us
I found it on solaris in
man -s 5 hosts_access
I also set up an e-mail spawn for attempts
ALL:ALL:spawn (/usr/bin/echo "Someone from %a is testing `hostname`
using %d" |
/bin/mailx -s "RED ALERT !!! (Message from TCP Wrappers)"
pagoaga):DENY
This is in the hosts.allow file of the new format which allows denys
to be
included. If you put it in a hosts.deny file, remove the :DENY from
the end of
it.
Katherine
"McIllece, Matthew W" wrote:
>
> Thanks Kevin! I take it then that "ALL: PARANOID" is the absolute
most
> secure setting for /etc/hosts.deny, no? Is the "ALL: PARANOID"
setting
> mentioned in print anywhere? All I can find are references to
"ALL: ALL".
More information about the LUG
mailing list